Academia.eduAcademia.edu

Outline

Title
Abstract
Figures
Introduction
Use Case Design Flaw
Big Data Area
Background
Blockchain Research on Bigdata
Summary
References
All Topics
Computer Science

A survey of blockchain from security perspective

Profile image of John ShreinJohn Shrein

2019, Journal of Banking and Financial Technology

https://doi.org/10.1007/S42786-018-00002-6
visibility

description

17 pages

link

1 file

Abstract

The report starts with an overview of the blockchain security system and then highlights the specific security threats and summarizes them. We review with some comments and possible research direction. This survey, we examines the security issues of blockchain model related technologies and their applications. The blockchain is considered a still growing like the internet in 1990. It has the potential to disrupt so many technology areas in the future. But as a new underdeveloped field, it is suffering many setbacks mostly resulting from the security area. Its security concerns coming not only from distributed/ decentralized computing issue or Cryptography algorithm issue, from some unexpected field too. Here, in this paper, we tried to classify the security concerns for the blockchain based on our survey from recent research papers. We also tried to show which way blockchain development trends are going.

Figures (15)
Many of these standardized elliptic curves either have theo- retical weaknesses or were generated using questionable parameters. For example, the NIST P-256 curve is viewed skeptically by some cryptographers because derivation of the curve parameters are not well explained and allow for some possibility of manipulation such that the curve may contain intentional weaknesses or “backdoors”. There is some precedence for this type of intentional weakness as NIST previously published a standard for a cryptographi- cally secure random number generator based on elliptic curve operations called Dual_EC_DRBG. The backdoor was suspected even before the standard was published and it was later revealed in a Reuters article that RSA Secu- rity was paid $10 million to incorporate this algorithm as the default random number generator in the RSA BSAFE library, though RSA denies this allegation [43]. The back- door allows someone that knows a secret set of numbers to break the encryption of any message given only 32 bits of ciphertext [53].
Many of these standardized elliptic curves either have theo- retical weaknesses or were generated using questionable parameters. For example, the NIST P-256 curve is viewed skeptically by some cryptographers because derivation of the curve parameters are not well explained and allow for some possibility of manipulation such that the curve may contain intentional weaknesses or “backdoors”. There is some precedence for this type of intentional weakness as NIST previously published a standard for a cryptographi- cally secure random number generator based on elliptic curve operations called Dual_EC_DRBG. The backdoor was suspected even before the standard was published and it was later revealed in a Reuters article that RSA Secu- rity was paid $10 million to incorporate this algorithm as the default random number generator in the RSA BSAFE library, though RSA denies this allegation [43]. The back- door allows someone that knows a secret set of numbers to break the encryption of any message given only 32 bits of ciphertext [53].
Fig. 2 Classification of Blockchain vulnerability
Fig. 2 Classification of Blockchain vulnerability
Fig. 4 Eclipse attack [62] Fig. 3 Illustration of Sybil attack
Fig. 4 Eclipse attack [62] Fig. 3 Illustration of Sybil attack
Fig.5 Estimation of resources required to compute elliptic curve discrete logarithms using Shor’s algorithm versus factoring an RSA modulu using Shor’s algorithm
Fig.5 Estimation of resources required to compute elliptic curve discrete logarithms using Shor’s algorithm versus factoring an RSA modulu using Shor’s algorithm
Fig.6 An illustration of the race attack, which attempts to double- spend the same digital asset DDoS attacks are not specific to blockchain networks, but they can be used with some specific variation to attack blockchain and asset exchange networks. In this type of attack, an attacker typically leverages a network of hijacked devices to flood a network with an excessive amount of requests that cripple the network’s ability to service legiti- mate traffic. Blockchain and exchange networks may protect against DDoS attacks in some fashion, but this protection is admittedly vulnerable to more complex attacks [65]. Bitcoin Gold, one of the cryptocurrencies forked from Bitcoin, suf- fered a massive DDoS attack during its launch, receiving
Fig.6 An illustration of the race attack, which attempts to double- spend the same digital asset DDoS attacks are not specific to blockchain networks, but they can be used with some specific variation to attack blockchain and asset exchange networks. In this type of attack, an attacker typically leverages a network of hijacked devices to flood a network with an excessive amount of requests that cripple the network’s ability to service legiti- mate traffic. Blockchain and exchange networks may protect against DDoS attacks in some fashion, but this protection is admittedly vulnerable to more complex attacks [65]. Bitcoin Gold, one of the cryptocurrencies forked from Bitcoin, suf- fered a massive DDoS attack during its launch, receiving
Fig.7 An illustration of forks in a blockchain. The main chain is shown in black with stale blocks shown in purple
Fig.7 An illustration of forks in a blockchain. The main chain is shown in black with stale blocks shown in purple
Fig.9 BlockChain vulnerability reason and counter Fig. 8 Coding flow reported in bitcoin during 2018
Fig.9 BlockChain vulnerability reason and counter Fig. 8 Coding flow reported in bitcoin during 2018
3.1.1 Background also impractical to fork any blockchain in which losses take place, splitting the community between the purists who are fully dedicated to the blockchains true history, good or bad, and the realists who do not want to take a hit for 533 million due to lax security and poor coding practices (Figs.8, 9).
3.1.1 Background also impractical to fork any blockchain in which losses take place, splitting the community between the purists who are fully dedicated to the blockchains true history, good or bad, and the realists who do not want to take a hit for 533 million due to lax security and poor coding practices (Figs.8, 9).
Fig. 11 Published journal in last 3 years with a proof of concept in blockchain
Fig. 11 Published journal in last 3 years with a proof of concept in blockchain
Fig. 12 Various blockchain frameworks for different purposes
Fig. 12 Various blockchain frameworks for different purposes
In Fig. 14 we can see the paradox of Bigdata investment Fig. 14 Bigdata investment and cost paradox [32] From recent bigdata survey [2], We can see that maintain- ing big data center is increasing operational cost worldwide and this cost getting higher day by day, no matter how much cheaper the data medium or bandwidth speed increase. On average each of the 24 firms had 16 data center sites.It stated that “The companies with the broadest data center footprint are the leading cloud providers—Amazon/AWS, Microsoft, IBM and Google. Each has 45 or more data center locations with at least three in each of the four regions—North Amer- ica, APAC, EMEA and Latin America. Oracle and Alibaba also have a notably broad data center presence. The remain- ing firms tend to have their data centers focused primarily in either the US (Apple, Twitter, Facebook, eBay, LinkedIn, Yahoo) or China (Tencent, Baidu)” [2].
In Fig. 14 we can see the paradox of Bigdata investment Fig. 14 Bigdata investment and cost paradox [32] From recent bigdata survey [2], We can see that maintain- ing big data center is increasing operational cost worldwide and this cost getting higher day by day, no matter how much cheaper the data medium or bandwidth speed increase. On average each of the 24 firms had 16 data center sites.It stated that “The companies with the broadest data center footprint are the leading cloud providers—Amazon/AWS, Microsoft, IBM and Google. Each has 45 or more data center locations with at least three in each of the four regions—North Amer- ica, APAC, EMEA and Latin America. Oracle and Alibaba also have a notably broad data center presence. The remain- ing firms tend to have their data centers focused primarily in either the US (Apple, Twitter, Facebook, eBay, LinkedIn, Yahoo) or China (Tencent, Baidu)” [2].
is comes to crowd sourcing. There is some new research on crowd sourcing with blockchain has done.
is comes to crowd sourcing. There is some new research on crowd sourcing with blockchain has done.

Related papers

Applications Of Blockchain Technology And Related Security Threats A Comparative Study
Dr. Rejwan Bin Sulaiman

2018

Blockchain is one of the emerging technology of 21 st century. It is getting common to the people helping them by providing better financial services without any centralised medium (banks, agencies etc.). Although it has a strong backbone of cryptography which ensures the data protection, however, security vulnerabilities are still the part of this system and they are continuously emerging. This paper will explore the deep analysis of various blockchain applications, related security threats and vulnerabilities, future trend and possible solutions that could promise the integrity of this technology.

View PDFchevron_right
An Analysis of Blockchain Technology A Security and Privacy Perspective
Santosh Joshi

An Analysis of Blockchain Technology A Security and Privacy Perspective, 2022

A distributed ledger technology that took over the world in recent days is Blockchain technology. It is simply a list that grows continuously holding the records of the transactions and data records securely in the form of blocks. It is also referred to as technology similar to linked lists where blocks are interlinked to each other [20]. A header block and the body block are the two main components of each block in the blockchain [41]. Usually, the header block holds the information about the management information of the block and the chain. The nodes of the blockchain communicate directly with each other through a peer-to-peer network. Every node consists of its digital signature [30] to validate the transactions. Blockchain technology brings the features like transparency, decentralisation, anonymity, and audibility. These features have gained the interest of both researchers and industries. Nowadays blockchains are extensively used in the fields of finance, medicine, agriculture, transportation, and Internet of Things [25] [38]. But we need to consider the security and privacy-related challenges in order to effectively use this new technology. Today most of the researches are going on the security and the privacy issues of the blockchain. The researches mainly focus on two concepts, analyzing the attacks which have been suffered by the blockchain recently and proposing some of the countermeasures against the type of attack. However, there are very little researches that provide an in-depth analysis of these issues The focus of this chapter is on examining current trends in blockchain security and privacy problems. The chapter is laid out in a fairly orderly fashion. The first portion of the chapter covers the fundamentals of blockchain technology, including the various types of blockchains, blockchain architecture, and consensus methods. The most recent and likely cyberattacks and issues on blockchains are described in the next section. The solutions section lists some of the legitimate current countermeasures to the attacks presented. Finally, the article highlights the unresolved concerns that will need to be handled effectively in the future.

View PDFchevron_right
A survey on the security of blockchain systems
Xiaoqi Li

Future Generation Computer Systems, 2020

Since its inception, the blockchain technology has shown promising application prospects. From the initial cryptocurrency to the current smart contract, blockchain has been applied to many fields. Although there are some studies on the security and privacy issues of blockchain, there lacks a systematic examination on the security of blockchain systems. In this paper, we conduct a systematic study on the security threats to blockchain and survey the corresponding real attacks by examining popular blockchain systems. We also review the security enhancement solutions for blockchain, which could be used in the development of various blockchain systems, and suggest some future directions to stir research efforts into this area.

View PDFchevron_right
Security and Privacy Issues of Blockchain Technology
Sabah Alzahrani

Studies in Big Data, 2019

Block-chain is getting popular and it is one of the most common topics that can be considered. it has also changed the lifestyles of many people in certain fields, because of the impact on businesses and combines. Blockchain ensures more reliable and appropriate resources and it is very crucial to keep in mind that the security and privacy have some obstacles as any technology in this fields. The spectrum of blockchain applications is very extended into different areas in banking, health, automotive, the Internet of Things (IoT) etc. Many studies concentrate on using the block-chain data model in different implementations. In this paper we try to describe block-chain technology by discussing its model of a data protection and privacy perspective with different consensus algorithms, as well as issues and opportunities in blockchains.

View PDFchevron_right
Blockchain Challenges and Security Schemes: A Survey
Sirine Sayadi

2018 Seventh International Conference on Communications and Networking (ComNet)

With the increasing number of connected devices and the number of online transactions today, managing all these transactions and devices and maintaining network security is a research issue. Current solutions are mainly based on cloud computing infrastructures, which require servers high-end and broadband networks to provide data storage and computing services. These solutions have a number of significant disadvantages, such as high maintenance costs of centralized servers, critical weakness of Internet Of Things applications, security and trust issues, etc. The blockchain is seen as a promising technique for addressing the mentioned security issues and design new decentralization frameworks. However, this new technology has a great potential in the most diverse technological fields. In this paper, we focus on presenting an overview of blockchain technology, highlighting its advantages, limitations and areas of application. The originality of this work resides in the comparison between the different blockchain systems and their security schemes and the perspective of integrating this technology into secured systems models for our comfort and our private life.

View PDFchevron_right
The Most Secured Technology: Blockchain and Its application in Various Sectors
Rathindra Nath Mohalder

International Journal of Computer Trends and Technology, 2019

Blockchain is the most amazing technology for upcoming inflictions in computing. It is a decentralized, digitized, creative and innovative invention of the present world by an individual or a group work under the pseudonym, Satoshi Nakamoto in 2008. Distributed ledger of records is immutable and verifiable in Blockchain that's why it is impossible to manipulate any data in existing blocks. Although the most common assumption of blockchain is cryptocurrency, there are explorations in different other sectors. This paper analysis the scope of reviewing the blockchain technology which will introduce the latest research field of its applications. However, it will also highlight the opportunities as well as the challenges in front of the recent technology which is developing our digital world.

View PDFchevron_right
A Study Of Security Issues In Blockchain Technology And Its Preventive Measures
Monica Apte

Blockchain technology is a distributed ledger constituted of blocks, supported by a network of peers. Each node follows the same protocol and users can interact with nodes to append the transactions. When building an enterprise blockchain application, it's important to consider security at all layers of the technology stack, and to manage governance and permissions for the network. A comprehensive security strategy for an enterprise blockchain solution includes using traditional security controls and technology-unique controls. While blockchain has been touted as virtually unhackable, but most of blockchain transactions have endpoints that are far less secure.

View PDFchevron_right
A survey on security and policy aspects of blockchain technology
TELKOMNIKA JOURNAL

TELKOMNIKA Telecommunication Computing Electronics and Control, 2023

This survey talks about the problem of security and privacy in the blockchain ecosystem which is currently a hot issue in the blockchain community. The survey intended to study this problem by considering different types of attacks in the blockchain network with respect to algorithms presented. After a preliminary literature review it seems that some focus has been given to study the first use case while, to the best of my knowledge, the second use case requires more attention when blockchain is applied to study it. The research is also interested in exploring the link between these two use cases to study the overall data ownership preserving accountable system which will be a novel contribution of this work. However, due to the subsequent government mandated secrecy around the implementation of data encryption standard (DES), and the distrust of the academic community because of this, a movement was spawned that put a premium on individual privacy and decentralized control. This movement brought together the top minds in encryption and spawned the technology we know of as blockchain today. This survey explores the genesis of encryption, its early adoption, and the government meddling which eventually spawned a movement which gave birth to the ideas behind blockchain.

View PDFchevron_right
Blockchain Technology: A Review on Architecture, Security Issues and Challenges
PRIYA MAIDAMWAR

International Journal of Engineering Applied Sciences and Technology

Data is one of the most significant resources. In this digital era, cyber security has become the worldwide issue. Since cyber criminals are getting progressively skilful in their attempts to destroy the valuable data, securing this data has become mandatory. Different procedures have been developed in the past to secure the data, but there are no bounds to security threats, resulting in theft of information from the devices. Currently Blockchain technology is the best tool to secure the data. Blockchain, originally known as Bitcoin, has become very popular technology to digitally create and manage transactions. It is a form of distributed public ledger which analyses and verifies transactions in decentralized manner and data is not under the control of any third party organization. This rapidly evolving technology can possibly change the opinion about digital transactions in various areas such as energy supply, peer-to-peer global payments, financial transactions, agriculture and industry. Regardless, this rising innovation is still in its beginning period of progression. Inspite of several opportunities offered by blockchain, it has limitations such as transaction cost, scalability, consistency security and administration issues which has not yet been addressed and investigated. In spite of the fact that there are a couple of studies on the security and privacy issues of the blockchain, they do not have an efficient assessment of the securing blockchain architectures. This paper presents a detailed architecture of blockchain technology along with systematic study of the security attacks rising in blockchain technology.

View PDFchevron_right
BLOCKCHAIN CRYPTOGRAPHY AND SECURITY ISSUES
Engr. Mohamed Abdelrahman

International Journal of Computer Science and Engineering Survey (IJCSES), 2022

Transaction records and other user information are stored in blocks that form a distributed ledger called blockchain. For blockchain to gain widespread adoption, it is crucial that user and transaction data be kept safe. This technology provides cryptographically safe and anonymous financial transactions among the user nodes of the network allowing the transactions to be evaluated and authorized by all the users in a transparent environment. In this paper, we provide a comprehensive overview and classification scheme for all cryptographic ideas currently used in blockchain. Moreover, the current security issues of blockchain are shown, and a future research objective is predicted.

View PDFchevron_right

References (68)

  1. Amine Ferrag M, Derdour M, Mukherjee M, Derhab A (2018) Blockchain technologies for the internet of things: research issues and challenges. IEEE, New York
  2. Avanade (2018) Cloud solutions that deliver the speed you need to become a digital business. Avanade, Seattle
  3. Bahri L, Carminati B, Ferrari E (2018) Decentralized privacy preserving services for online social networks. Online Soc Netw Media 6:18-25
  4. Bennett R, Pickering M, Sargent J (2018) Innovations in land data governance: unstructured data, nosql, blockchain, and big data analytics unpacked. In: Land and poverty conference 2018. Land governance in an interconnected world, Washington, DC, 19-23 Mar 2018
  5. Bernstein DJ, Lange T (2014) Safecurves: choosing safe curves for elliptic-curve cryptography. University of Illinois, Chicago
  6. Boireau O (2018) Securing the blockchain against hackers. Netw Secur 2018(1):8-11
  7. Buntinx J (2017) What is bitcoin fungibility. The Merkle, London
  8. Foundation E (ed.) (n.d.) Privacy on the Blockchain. Retrieved November 01, 2018, from https ://blog.ether eum.org/2016/01/15/ priva cy-on-the-block chain /
  9. Buterin V (n.d.) Ethereum Project. Retrieved November 1, 2018, from http://www.ether eum.org/
  10. Decker C, Wattenhofer R (2013) Information propagation in the Bitcoin network. IEEE P2P 2013 Proceedings, pp. 1-10
  11. Choo R, He X, Lin C, He D, Vasilakos AV (2018) Bsein: a block- chain-based secure mutual authentication with fine-grained access control system for industry 4.0. Netw Comput Appl 116:42-52
  12. Carey JE, Gerard SN (2018) U.S. Patent Application No. 15/374,493
  13. Chen Y, Li Q, Wang H (2018) Towards Trusted Social Networks with Blockchain Technology. arXiv preprint: arXiv :1801.02796
  14. Cichosz SL, Stausholm MN, Kronborg T, Vestergaard P, Hejlesen O (2018) How to use blockchain for diabetes health care data and access management: an operational concept. J Diab Sci technol. https ://doi.org/10.1177/19322 96818 79028 1
  15. Cimpanu C (2017) 74% of all Bitcoin-Related Sites Suffered a DDoS Attack. Retrieved November 1, 2018, from https ://www. bleep ingco mpute r.com/news/secur ity/74-perce nt-of-all-bitco in-relat ed-sites -suffe red-a-ddos-attac k/
  16. Clauson KA, Breeden EA, Davidson C, Mackey TK (2018) Lev- eraging blockchain technology to enhance supply chain manage- ment in Healthcare. Blockchain in Healthcare Today
  17. Dagher GG, Mohler J, Milojkovic M, Marella PB (2018) Ancile: privacy-preserving framework for access control and interoper- ability of electronic health records using blockchain technology. Sustain Cities Soc 39:283-297
  18. Dataeum: First Blockchain Solution that Produces 100% Accu- rate Data through Crowdsourcing (2018) Retrieved November 1, from https ://www.cnbca frica .com/apo/2018/04/12/datae um-first -block chain -solut ion-that-produ ces-100-accur ate-data-throu gh- crowd sourc ing/
  19. de Vries A (2018) Bitcoin's growing energy problem. Joule 2(5):801-805
  20. Android random number flaw implicated in Bitcoin thefts (2013) Retrieved November 1, 2018, from https ://naked secur ity.sopho s.com/2013/08/12/andro id-rando m-numbe r-flaw-impli cated -in-bitco in-theft s/
  21. Ducklin P (2018) What are "WannaMine" attacks, and how do I avoid them? Retrieved from https ://naked secur ity.sopho s.com/2018/01/31/what-are-wanna mine-attac ks-and-how-do-i- avoid -them/
  22. Eskandari S, Leoutsarakos A, Mursch T, Clark J (2018) A first look at browser-based cryptojacking. arXiv preprint arXiv :1803.02887
  23. Funk E, Riddell J, Ankel F, Cabrera D (2018) Blockchain technol- ogy: a data framework to improve validity, trust, and accountabil- ity of information exchange in health professions education. Acad Med 93(12):1791-1794
  24. Gao F, Zhu L, Shen M, Sharif K, Wan Z, Ren K (2018) A block- chain-based privacy-preserving payment mechanism for vehicle- to-grid networks. IEEE Network, New York
  25. Gräther W, Kolvenbach S, Ruland R, Schütte J, Torres C, Wend- land F (2018) Blockchain for education: lifelong learning pass- port. In: Proceedings of 1st ERCIM blockchain workshop 2018. European Society for Socially Embedded Technologies (EUSSET)
  26. Grover LK (1996) Fast quantum mechanical algorithm for data- base search. In: ACM symposium on the theory of computing, pp 212-219
  27. Grover LK (1997) Quantum mechanics helps in searching for a needle in a haystack. Phys Rev Lett 78:325-328
  28. Hegadekatti V, Hegadekatti K (2018) Blockchain applications in medical sciences. Int J Sci Res 7(4)
  29. Heilman E, Zohar A, Goldberg S (2015) Eclipse attacks on bit- coin's peer-to peer network. In: USENIX conference on security symposium, pp 129-144
  30. Huang X, Xu C, Wang P, Liu H (2018) LNSC: a security model for electric vehicle and charging pile management based on block- chain ecosystem. IEEE Access 6:13565-13574
  31. Hunt GD, Koved L (2018) U.S. Patent Application No. 15/372,068
  32. IDC (2012) Executive summary: a universe of opportunities and challenges. IDC, Framingham
  33. Jain A, Jain A, Chauhan N, Singh V, Thakur N (2018) Seguro Digital storage of documents using Blockchain
  34. Jiao Y, Wang P, Niyato D, Xiong Z (2018) Social welfare maximi- zation auction in edge computing resource allocation for mobile blockchain. In: 2018 IEEE international conference on commu- nications (ICC), pp 1-6. IEEE, New York
  35. Kim H-W, Jeong Y-S (2018) Secure authentication-management human-centric scheme for trusting personal resource information on mobile cloud computing with blockchain. Hum-Centric Com- put Inf Sci 8(1):11
  36. Lee J-H (2018) Bidaas: blockchain based id as a service. IEEE Access 6:2274-2278
  37. Li GD, Jenni Kassem M (2018) Blockchain in the built environ- ment: analysing current applications and developing an emergent framework. Northumbria, Newcastle
  38. Li M, Weng J, Yang A, Lu W, Zhang Y, Hou L, Liu J-N, Xiang Y, Deng RH (2017) Crowdbc: a blockchain-based decentralized framework for crowdsourcing. In: Technical report, IACR Cryp- tology, ePrint archive, University of California, Santa Barbara, vol 444
  39. Liang X, Shetty S, Tosh D, Kamhoua C, Kwiat K, Njilla L (2017) Provchain: a blockchain-based data provenance architecture in cloud environment with enhanced privacy and availability. In: Proceedings of the 17th IEEE/ACM international symposium on cluster, cloud and grid computing, pp 468-477. IEEE Press, New York
  40. Lin C, He D, Huang X, Choo K-KR, Vasilakos A V (2018) Bsein: a blockchain-based secure mutual authentication with fine-grained access control system for industry 4.0. J Netw Comput Appl 116:42-52
  41. Lu Y, Tang Q, Wang G (2018) Zebralancer: private and anony- mous crowdsourcing system atop open blockchain. arXiv preprint: arXiv :1803.01256
  42. Maria A, Zohar V (2017) Hijacking bitcoin: routing attacks on cryptocurrencies,. In: IEEE symposium on security and privacy, pp 375-392
  43. Menn J (2013) Exclusive: secret contract tied NSA and security industry pioneer. Retrieved November 1, 2018, from https ://www. reute rs.com/artic le/us-usa-secur ity-rsa/exclu sive-secre t-contr act- tied-nsa-and-secur ity-indus try-pione er-idUSB RE9BJ 1C220 13122 0
  44. Musch M, Wressnegger C, Johns M, Rieck K (2018) Web-based cryptojacking in the wild. arXiv preprint: arXiv :1808.09474
  45. Nowiński W, Kozma M (2017) How can blockchain technol- ogy disrupt the existing business models? Entrep Bus Econ Rev 5(3):173-188
  46. List Of High Profile Cryptocurrency Hacks So Far (August 24th 2017). (2017, August 24). Retrieved Novem- ber 1, 2018, from http://storeofvalueblog.com/posts/ cryptocurrency-hacks-so-far-august-24th/
  47. Otte P, de Vos M, Pouwelse J (2017) Trustchain: a sybil-resistant scalable blockchain. Future Gener Comput Syst
  48. Keutmann (2018) Keutmann/Trustchain. Retrieved November 1, 2018, from https ://githu b.com/keutm ann/Trust chain
  49. Poon J, Buterin V (2017) Plasma: Scalable autonomous smart contracts. White paper
  50. Prinz W (2018) Blockchain and CSCW-shall we care? In: Pro- ceedings of 16th European conference on computer-supported cooperative work-exploratory papers. European Society for Socially Embedded Technologies (EUSSET)
  51. Qin D, Wang C, Jiang Y (2018) Rpchain: a blockchain-based aca- demic social networking service for credible reputation building. In: International conference on blockchain. Springer, New York, pp 183-198
  52. The IRS Has a Way to ID Bitcoin Tax Cheats (n.d.) Retrieved November 1, 2018, from http://fortu ne.com/2017/08/22/irs-tax- cheat s-bitco in-chain alysi s/
  53. Schneier on Security (2007) Retrieved November 1, 2018, from https ://www.schne ier.com/essay s/archi ves/2007/11/did_nsa_ put_a_secre t.html
  54. Schneier NFB (2003) Practical cryptography. Wiley, Indianapolis
  55. Shah SN (2018) Distributed electronic document review in a blockchain system and computerized scoring based on textual and visual feedback, 16 Jan 2018. US patent 9870591
  56. Nilsson K (2017) Breaking open the MtGox case, part 1. Retrieved November 1, 2018, from https ://blog.wizse c.jp/2017/07/break ing- open-mtgox -1.html
  57. Stevens M, Pierre K, Albertini A, Markov Y, Bursztein E (2017) The first collision for full SHA-1. In: Katz J, Shacham H (eds) Advances in cryptology-crypto 2017. Springer, New York
  58. Swan M, Brunswicker S (2018) Blockchain economic networks and algorithmic trust. In: AMCIS 2018
  59. Turkanović M, Hölbl M, Košič K, Heričko M, Kamišalić A (2018) Eductx: a blockchain-based higher education credit platform. IEEE Access 6:5112-5127
  60. University Stanford (2011) Pertinent side channel attacks on ellip- tic curve cryptographic systems. Stanford University, Stanford
  61. Vo HT, Kundu A, Mohania MK (2018) Research directions in blockchain data management and analytics. In: EDBT, pp 445-448
  62. Wang F (2015) Eclipse attacks on bitcoin's peer-to-peer network. https ://mediu m.com/mit-secur ity-semin ar/eclip se-attac ks-on-bitco in-s-peer-to-peer-netwo rk-e0da7 97302 c2
  63. Wang Q, Qin B, Hu J, Xiao F (2017) Preserving transaction privacy in bitcoin. Future Generation Comput Syst. https ://doi. org/10.1016/j.futur e.2017.08.026
  64. Wang S, Taha A, Wang J (2018) Blockchain-assisted crowd- sourced energy systems. arXiv preprint: arXiv :1802.03099
  65. Weaknesses. (n.d.). Retrieved November 1, 2018, from https :// en.bitco in.it/wiki/Weakn esses
  66. Wirth C, Kolain M (2018) Privacy by blockchain design: a block- chain-enabled GDPR-compliant approach for handling personal data. In: Proceedings of 1st ERCIM blockchain workshop 2018. European Society for Socially Embedded Technologies (EUSSET)
  67. Zhang R (2018) Blockchain scalability: prospective solutions for bitcoin, ethereum, and other blockchain networks
  68. Zhao H, Bai P, Peng Y, Xu R (2018) Efficient key manage- ment scheme for health blockchain. CAAI Trans Intell Technol

Related papers

A survey of blockchain Security Issues and challenges
Abderahman Rejeb

Blockchain technologies is one of the most popular issue in recent years, it has already changed people's lifestyle in some area due to its great influence on many business or industry, and what it can do will still continue cause impact in many places. Although the feature of blockchain technologies may bring us more reliable and convenient services, the security issues and challenges behind this innovative technique is also an important topic that we need to concern.

View PDFchevron_right
A survey paper on blockchain and its implementation to reduce security risks in various domains
Sidra Minhas

Lahore Garrison University research journal of computer science and information technology, 2022

Every technology with its powerful uses has issues connected to it, and security is at the top. As for the changing environment, the world has been shifting to Virtual Reality; the new coming world seems to be the internet and blockchain technology which is more powerful than others and has its applications in every field, be it quantum computing, internet of things, security or others. This survey paper covers blockchain and its security in different sciences and technology fields. We begin with the introduction of blockchain and then discuss its structure. After that, security issues have been highlighted, including attacks and their behavior in quantum computing, internet of things, and cloud computing. Furthermore, we have discussed the most common types of attacks and the SRM model of blockchain, followed by the conclusion.

View PDFchevron_right
A Survey of the Concept of Blockchain security Challenges and Risks
Jawed Qureshi

International Journal of Computer Trends and Technology, 2019

The Blockchain [1] is the new buzzword in the world of technologies. All sectors have started to focus on concrete use cases, but only few actors can claim of having devised revolutionary solutions. For many reasons : Blockchain technology has been around for a while and remains very complex to understand. The Blockchain is the partie of technologies to monitor in the years to future. It could revolutionize many sectors of the economy, starting with banking and insurance. This document will presents in detail the following points: what is Blockchain and how it starts ? Blockchain security challenges and threats ? and to finish how we can secure this technology ?

View PDFchevron_right
A Study on Blockchain Security Issues and Challenges
Sayani Chandra

2018

The successful adoption and operation of any new technology is dependent on the appropriate management of the risks associated with that technology. This is especially true when that technology is more than an application and is part of the organization’s core infrastructure. And distributed ledger technologies (DLT) like blockchain technology have the potential to be the backbone of many core platforms in the near future. The blockchain is an undeniably ingenious invention – the brainchild of a person or group of people known by the pseudonym, Satoshi Nakamoto. It has become a focus of global attention since its development as banks around the world seek to understand and harness its disruptive potential. Many of the industries has been exploring how to use blockchains across a variety of internal and client facing issues. Blockchain has the potential to transform our world. However, leading into 2018 the focus will move from “how to use a blockchain” to “how to secure a blockchain...

View PDFchevron_right
A Survey of Blockchain Technology Security
IJCERT Publications

International Journal of Computer Engineering in Research Trends, 2019

Bitcoin is a popular cryptocurrency that records all transactions in an allotted append-handiest public ledger referred to as a blockchain. The security of Bitcoin heavily relies on the motivation-suitable proof-of-work (PoW) founded dispensed consensus protocol, which is run with the aid of the community nodes known as miners. Because of its inception, blockchain technological know-how has proven promising application possibilities. The spectrum of blockchain functions stages from financial, healthcare, automobile, hazard administration, internet of matters (IoT) to public and social offerings. Several reports focal point on utilizing the blockchain information structure in various applications. These vulnerabilities result in the execution of different security threats to the ordinary functionality of Bitcoin. We then examine the feasibility and robustness of the brand new safety solutions. Moreover, we discuss the current anonymity concerns in Bitcoin and the privateness-related threats to Bitcoin customers together with the evaluation of the comprehensive privacy-keeping solutions.

View PDFchevron_right

Related topics

  • Computer Science
  • Computer Security

    • Cited by

    A Deep Dive into Blockchain Consensus Protocols
    Anamika Chauhan

    Lecture Notes in Networks and Systems

    Blockchain is the backbone of digital cryptocurrency systems, and it eliminates the need for a central authority in a decentralized network. Blockchain is a system that allows the sharing of information securely and transparently in a peer-to-peer connected decentralized network consisting of untrustable users. Blockchain technology ensures security, equality, and fairness of the system by following a well-defined set of rules known as a consensus protocol. These consensus protocols are at the core of blockchain technology and secure the network from various attacks and frauds. It is nearly impossible to breach a system following these protocols. There are various consensus protocols, each with its advantages and disadvantages. In this paper, we have discussed various consensus protocols in terms of performance, fairness, resource requirements, and security breaches. We have discussed the working of typical blockchain technology by describing major concepts in the implementation of bitcoin technology. We also discussed the most common security breaches in decentralized systems.

    View PDFchevron_right
    Research and Applied Perspective to Blockchain Technology: A Comprehensive Survey
    Sumaira Johar

    Applied Sciences, 2021

    Blockchain being a leading technology in the 21st century is revolutionizing each sector of life. Services are being provided and upgraded using its salient features and fruitful characteristics. Businesses are being enhanced by using this technology. Countries are shifting towards digital currencies i.e., an initial application of blockchain application. It omits the need of central authority by its distributed ledger functionality. This distributed ledger is achieved by using a consensus mechanism in blockchain. A consensus algorithm plays a core role in the implementation of blockchain. Any application implementing blockchain uses consensus algorithms to achieve its desired task. In this paper, we focus on provisioning of a comparative analysis of blockchain’s consensus algorithms with respect to the type of application. Furthermore, we discuss the development platforms as well as technologies of blockchain. The aim of the paper is to provide knowledge from basic to extensive fro...

    View PDFchevron_right
    iTrust—A Trustworthy and Efficient Mapping Scheme in Elliptic Curve Cryptography
    Ahmad almogren

    Sensors, 2020

    Recently, many platforms have outsourced tasks to numerous smartphone devices known as Mobile Crowd-sourcing System (MCS). The data is collected and transferred to the platform for further analysis and processing. These data needs to maintain confidentiality while moving from smartphones to the platform. Moreover, the limitations of computation resources in smartphones need to be addressed to balance the confidentiality of the data and the capabilities of the devices. For this reason, elliptic curve cryptography (ECC) is accepted, widespread, and suitable for use in limited resources environments such as smartphone devices. ECC reduces energy consumption and maximizes devices’ efficiency by using small crypto keys with the same strength of the required cryptography of other cryptosystems. Thus, ECC is the preferred approach for many environments, including the MCS, Internet of Things (IoT) and wireless sensor networks (WSNs). Many implementations of ECC increase the process of encry...

    View PDFchevron_right
    On the suitability of blockchain platforms for IoT applications: Architectures, security, privacy, and performance
    Konstantinos Limniotis, Σωτήρης Μπρότσης, Keltoum Bendiab

    Computer Networks, 2021

    Blockchain and distributed ledger technologies have received significant interest in various areas beyond the financial sector, with profound applications in the Internet of Things (IoT), providing the means for creating truly trustless and secure solutions for IoT applications. Taking into account the weak security defences that the majority of IoT devices have, it is critical that a blockchain-based solution targeting the IoT is not only capable of addressing the many challenges IoT is facing, but also does not introduce other defects, e.g. in terms of performance, making its adoption hard to achieve. This paper aims at addressing the above needs by providing a comprehensive and coherent review of the available blockchain solutions to determine their ability to meet the requirements and tackle the challenges of the IoT, using the smart home as the reference domain. Key architectural aspects of blockchain solutions, like the platforms' software and network setups, the consensus protocols used, as well as smart contracts, are examined in terms of their ability to withstand various types of common IoT and blockchain attacks, deliver enhanced privacy features, and assure adequate performance levels while processing large amounts of transactions being generated in an IoT environment. The analysis carried out identified that the defences currently provided by blockchain platforms are not su cient to thwart all the prominent attacks against blockchains, with blockchain 1.0 and 2.0 platforms being susceptible to the majority of them. On the other side, privacy related mechanisms are being supported, to varying degrees, by all platforms investigated; however, each of the them tackles specific only privacy aspects, thus rendering the overall privacy evaluation a challenging task which needs to be considered in an ad-hoc basis. If the underlying consensus protocols' performance and fault tolerance is also considered, then only a small number of platforms meet the requirements of our reference IoT domain. This project has received funding from the European Union's Horizon 2020 research and innovation programme under grant agreement no. 786698. The work reflects only the authors' view and the Agency is not responsible for any use that may be made of the information it contains.

    View PDFchevron_right
    Risks in Blockchain – A Survey about Recent Attacks with Mitigation Methods and Solutions for Overall
    Tauheed Khan Mohd

    2022 IEEE International Conference on Electro Information Technology (eIT), 2022

    The purpose of this paper is to analyze the context and attack surface of a variety of security breaches and attacks on cryptocurrency blockchains. For many different types of blockchain attacks, such as distributed denial-of-service (DDoS) attacks and majority (51%) attacks, there is very little literature investigating and comparing particular attack instances as opposed to focusing on general theoretical studies and mitigation techniques. The attacks investigated here include a series of DDoS attacks on the Bitfinex cryptocurrency exchange and a group of instances of the 51% attack on thirteen different cryptocurrency blockchains. The goal of this research is to find traits in the context and attack surface that exacerbate the losses caused by certain attacks as opposed to others. It will then propose solutions and mitigation techniques based on the circumstances of the cases where the impact of the attack was less serious. Index Terms—blockchain, technology, security, bitcoin, online markets

    View PDFchevron_right
    580 California St., Suite 400
    San Francisco, CA, 94104
    © 2025 Academia. All rights reserved